1 .TH rlm_realm 5 "19 May 2006" "" "FreeRADIUS Module"
3 rlm_realm \- FreeRADIUS Module
5 The \fIrlm_realm\fP module parses the User-Name attribute into a
6 User section and a Realm section. This is used primarily in a
7 proxy situation, however, Realms can also be used locally to provide
8 different service profiles based on the Realm being used.
10 The main configuration items to be aware of are:
12 This can be either 'prefix' or 'suffix'. It specifies whether the
13 Realm is before or after the User portion in the User-Name string.
15 A single character in quotes, which is used as the delimiting
16 character that separates the Realm and User sections of the string.
18 This is set to either 'yes' or 'no'. If set to 'yes', this will
19 prevent the module instance from matching a realm against the DEFAULT
20 entry. This may be useful if you have multiple realm module instances.
23 This is set to either 'yes' or 'no'. If set to 'yes', this will
24 prevent the module instance from matching a realm against the NULL
25 entry. This may be useful if you have multiple realm module instances.
28 This module parses the realm from the User-Name attrbiute according
29 to the instance configuration, and then performs a lookup to find a
30 matching realm in the '/etc/raddb/proxy.conf' file. Depending on the
31 configuration of the Realm as matched in the file, the username may
32 be rewritten in a 'stripped' format, or with the Realm portion
33 removed. In either case, a Realm attribute is created and added to
34 the packet on a match, which can be used by other modules.
36 In order to force proxying for a request, set the
38 Proxy-To-Realm := "realm-name"
40 in the \fIusers\fP file, or in a database such as SQL.
48 # useranme@realm syntax
59 # realm/username syntax
80 .I /etc/raddb/radiusd.conf,
81 .I /etc/raddb/proxy.conf
88 Chris Parker, cparker@segv.org